Hot!VPN usin dynamic IPs

Author
abdeir
New Member
  • Total Posts : 1
  • Scores: 0
  • Reward points: 0
  • Joined: 2020/03/24 16:38:28
  • Status: offline
2020/03/24 16:47:19 (permalink) 6.2
0

VPN usin dynamic IPs

Hi,
 
i have a fortigate 6.2.3 and i need to configure a VPN for remote users. i have tow dynamic WAN connection. is it possible or i must have a static ip from ISP provider.
 
regards
 
#1

4 Replies Related Threads

    ede_pfau
    Expert Member
    • Total Posts : 6350
    • Scores: 537
    • Reward points: 0
    • Joined: 2004/03/09 01:20:18
    • Location: Heidelberg, Germany
    • Status: offline
    Re: VPN usin dynamic IPs 2020/03/25 04:53:42 (permalink)
    0
    You can make it work.
     
    Connect one of your WAN addresses (interfaces) to a DDNS service. For example, dyndns.org or even Fortinet. In the Forticlient, specify the domain name instead of the remote WAN IP address. This should work, in aggressive mode.

    Ede

    " Kernel panic: Aiee, killing interrupt handler!"
    #2
    rwpatterson
    Expert Member
    • Total Posts : 8490
    • Scores: 205
    • Reward points: 0
    • Joined: 2006/08/08 10:08:18
    • Location: Long Island, New York, USA
    • Status: online
    Re: VPN usin dynamic IPs 2020/03/25 05:07:54 (permalink)
    0
    For the record, you can do this. I do it all day. I even have IPSec VPN tunnels with dynamic IPs on both ends working flawlessly.

    -Bob - self proclaimed posting junkie!
    See my Fortigate related scripts at: http://fortigate.camerabob.com

    -4.3.19-b0694
    FWF80CM (2)
    FWF81CM (3)
     
    #3
    ede_pfau
    Expert Member
    • Total Posts : 6350
    • Scores: 537
    • Reward points: 0
    • Joined: 2004/03/09 01:20:18
    • Location: Heidelberg, Germany
    • Status: offline
    Re: VPN usin dynamic IPs 2020/03/25 05:10:56 (permalink)
    0
    good to hear and reassuring, Bob...so they don't take everything for granted, these youngsters.
     
    Of course I've got several dyn-to-dyn VPNs running as well. Static IPs are hard (and costly) to get these days. Mind the aggressive mode though.

    Ede

    " Kernel panic: Aiee, killing interrupt handler!"
    #4
    TecnetRuss
    Bronze Member
    • Total Posts : 32
    • Scores: 12
    • Reward points: 0
    • Joined: 2017/02/27 13:14:44
    • Status: offline
    Re: VPN usin dynamic IPs 2020/03/25 17:53:58 (permalink)
    0
    As Ede and Bob mentioned this is no problem at all.
     
    Here's the quick FortiGuard DDNS method:
    Under Network / DNS at the bottom you'll see a toggle for "FortiGuard DDNS".  Toggle that on, select your WAN interface that your VPN is configured on, select "Use Public IP address", select one of the three dynamic domain names under Server (fortiddns.com, fortidyndns.com or float-zone.com) and then type in your unique name that will form the first part of the FQDN that is shown at the bottom.
     
    You can then configure your clients to VPN to that FQDN.
     
    Russ
    NSE7
    #5
    Jump to:
    © 2020 APG vNext Commercial Version 5.5